Looking for some thoughts from the collective.
So where I am currently working, engineers have anywhere between 2 to 4 admin accounts. First time I have seen this. It is spllit into:
Local Admin Account
Remote Admin Account
Domain Admin account
Cloud admin account
Depending on your role you could have up to all of these, plus your normal network log in.
Is this not overkill? Or is it best practice?.
Its the first time I have seen something like this.
As part of our Cyber security review we are now tasked with ensuring all are MFA enabled. Now the cloud accounts are in Azure, we have Azure MFA. Happy days.
Senior mgmnt are now want another MFA solution to manage MFA on the other admin accounts. My argument is we dont need them. Consolidate to one admin account that is synced to azure, MFA enabled and appropriate permissions set. Job done.
So where I am currently working, engineers have anywhere between 2 to 4 admin accounts. First time I have seen this. It is spllit into:
Local Admin Account
Remote Admin Account
Domain Admin account
Cloud admin account
Depending on your role you could have up to all of these, plus your normal network log in.
Is this not overkill? Or is it best practice?.
Its the first time I have seen something like this.
As part of our Cyber security review we are now tasked with ensuring all are MFA enabled. Now the cloud accounts are in Azure, we have Azure MFA. Happy days.
Senior mgmnt are now want another MFA solution to manage MFA on the other admin accounts. My argument is we dont need them. Consolidate to one admin account that is synced to azure, MFA enabled and appropriate permissions set. Job done.
Comment